Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
racoon before 20040407b allows remote attackers to cause a denial of service (infinite loop and dropped connections) via an IKE message with a malformed Generic Payload Header containing invalid (1) "Security Association Next Payload" and (2) "RESERVED" fields.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
KAME Racoon远程IKE消息远程拒绝服务漏洞
Vulnerability Description
racoon是KAME的IKE守护程序。 KAME Racoon在处理畸形IKE消息时存在问题,远程攻击者可以利用这个漏洞对守护程序进行拒绝服务攻击。 在IKE协议中,有"Security Association Next Payload"的特殊字段保留和另一个由工作组标记的'RESERVED'字段。当客户端使用'Agressive' KEY交换方法,插入伪造信息到这些字段(独立或一前一后),Racoon服务器就会即刻进入无限循环,丢弃所有存在连接,消耗大量系统资源而产生拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A